WINS Integer Overflow Vulnerability
Severity: CRITICAL
CVE Identifier: CVE-2009-1924,MS09-039
Advisory Date: JUL 21, 2015
DESCRIPTION
Integer overflow in the Windows Internet Name Service (WINS) component for Microsoft Windows 2000 SP4 allows remote WINS replication partners to execute arbitrary code via crafted data structures in a packet, aka "WINS Integer Overflow Vulnerability."
TREND MICRO PROTECTION INFORMATION
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1003674
Trend Micro Deep Security DPI Rule Name: 1003674 - WINS Integer Overflow Vulnerability
AFFECTED SOFTWARE AND VERSION
- microsoft windows_2000
- microsoft windows_2003_server